Re: [squid-users] unable to connect to ssl site: google+

From: Henrik Nordström <henrik_at_henriknordstrom.net>
Date: Sat, 31 Dec 2011 00:28:29 +0100

tis 2011-12-27 klockan 22:56 +0100 skrev ftiaronsem:
> without problems. However I am unable to connect to google+
> https://plus.google.com, getting: "The connection has timed out".

Maybe Google have finally enabled some 10+ year old badly needed TCP
extensions to improve performance and your firewall is now falling over
in total confusion dropping it's packets on the floor?

That's namely the usual cause to unexpected "The connection has timed
out" issues where the same connections works when not going via the
proxy server.

Look for ECN , window scaling and to some extent PAWS.

Linux TCP/IP stack by default enables all these features very
aggressively. But not Windows and also many Linux based web servers have
ECN disabled and windows scaling aggressively tuned down to avoid broken
firewalls.

Regards
Henrik
Received on Fri Dec 30 2011 - 23:28:33 MST

This archive was generated by hypermail 2.2.0 : Sat Dec 31 2011 - 12:00:02 MST